ByteOS Network

NVD Vulnerability Details :

CVE-2010-3173

Modified

Source-cve@mitre.org

Published At-21 Oct, 2010 | 19:00

Updated At-29 Apr, 2026 | 01:13

The SSL implementation in Mozilla Firefox before 3.5.14 and 3.6.x before 3.6.11, Thunderbird before 3.0.9 and 3.1.x before 3.1.5, and SeaMonkey before 2.0.9 does not properly set the minimum key length for Diffie-Hellman Ephemeral (DHE) mode, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	2.0	7.5	HIGH	AV:N/AC:L/Au:N/C:P/I:P/A:P

Type: Primary

Version: 2.0

Base score: 7.5

Base severity: HIGH

Vector:

AV:N/AC:L/Au:N/C:P/I:P/A:P

Hyperlink	Source	Resource
http://blogs.sun.com/security/entry/multiple_vulnerabilities_in_mozilla_firefox	cve@mitre.org	N/A
http://secunia.com/advisories/41839	cve@mitre.org	N/A
http://secunia.com/advisories/42867	cve@mitre.org	N/A
http://support.avaya.com/css/P8/documents/100114250	cve@mitre.org	N/A
http://support.avaya.com/css/P8/documents/100120156	cve@mitre.org	N/A
http://www.debian.org/security/2010/dsa-2123	cve@mitre.org	N/A
http://www.mandriva.com/security/advisories?name=MDVSA-2010:210	cve@mitre.org	N/A
http://www.mandriva.com/security/advisories?name=MDVSA-2010:211	cve@mitre.org	N/A
http://www.mozilla.org/security/announce/2010/mfsa2010-72.html	cve@mitre.org	Vendor Advisory
http://www.redhat.com/support/errata/RHSA-2010-0781.html	cve@mitre.org	N/A
http://www.redhat.com/support/errata/RHSA-2010-0782.html	cve@mitre.org	N/A
http://www.ubuntu.com/usn/USN-1007-1	cve@mitre.org	N/A
http://www.vupen.com/english/advisories/2011/0061	cve@mitre.org	N/A
https://bugzilla.mozilla.org/show_bug.cgi?id=554354	cve@mitre.org	N/A
https://bugzilla.mozilla.org/show_bug.cgi?id=583337	cve@mitre.org	N/A
https://bugzilla.mozilla.org/show_bug.cgi?id=587234	cve@mitre.org	N/A
https://bugzilla.mozilla.org/show_bug.cgi?id=595300	cve@mitre.org	N/A
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12118	cve@mitre.org	N/A
http://blogs.sun.com/security/entry/multiple_vulnerabilities_in_mozilla_firefox	af854a3a-2127-422b-91ae-364da2661108	N/A
http://secunia.com/advisories/41839	af854a3a-2127-422b-91ae-364da2661108	N/A
http://secunia.com/advisories/42867	af854a3a-2127-422b-91ae-364da2661108	N/A
http://support.avaya.com/css/P8/documents/100114250	af854a3a-2127-422b-91ae-364da2661108	N/A
http://support.avaya.com/css/P8/documents/100120156	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.debian.org/security/2010/dsa-2123	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.mandriva.com/security/advisories?name=MDVSA-2010:210	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.mandriva.com/security/advisories?name=MDVSA-2010:211	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.mozilla.org/security/announce/2010/mfsa2010-72.html	af854a3a-2127-422b-91ae-364da2661108	Vendor Advisory
http://www.redhat.com/support/errata/RHSA-2010-0781.html	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.redhat.com/support/errata/RHSA-2010-0782.html	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.ubuntu.com/usn/USN-1007-1	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.vupen.com/english/advisories/2011/0061	af854a3a-2127-422b-91ae-364da2661108	N/A
https://bugzilla.mozilla.org/show_bug.cgi?id=554354	af854a3a-2127-422b-91ae-364da2661108	N/A
https://bugzilla.mozilla.org/show_bug.cgi?id=583337	af854a3a-2127-422b-91ae-364da2661108	N/A
https://bugzilla.mozilla.org/show_bug.cgi?id=587234	af854a3a-2127-422b-91ae-364da2661108	N/A
https://bugzilla.mozilla.org/show_bug.cgi?id=595300	af854a3a-2127-422b-91ae-364da2661108	N/A
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12118	af854a3a-2127-422b-91ae-364da2661108	N/A

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History